$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/FD58613E7B7B11E99CCAAF73C4F9AE02.roa File: FD58613E7B7B11E99CCAAF73C4F9AE02.roa (raw, json) Hash identifier: 3Y2ywUMzIUllkXV69U2DX1UEbcxneFrnhU/EZ3U/+as= Subject key identifier: AB:BC:96:C9:53:9C:1A:E4:9A:2E:69:6B:94:8A:C4:3F:BF:FC:ED:4F Certificate issuer: /CN=A91BFCB1/serialNumber=7B112F9EBEC342DFCAC774EB5C2681125C65E0CF Certificate serial: 1001 Authority key identifier: 7B:11:2F:9E:BE:C3:42:DF:CA:C7:74:EB:5C:26:81:12:5C:65:E0:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exEvnr7DQt_Kx3TrXCaBElxl4M8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/FD58613E7B7B11E99CCAAF73C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:19:53 +0000 ROA not before: Fri 04 Apr 2025 17:47:54 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138943 IP address blocks: 103.137.132.0/22 maxlen: 24 2404:b140::/32 maxlen: 42 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/exEvnr7DQt_Kx3TrXCaBElxl4M8.crl rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/exEvnr7DQt_Kx3TrXCaBElxl4M8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exEvnr7DQt_Kx3TrXCaBElxl4M8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4097 (0x1001) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFCB1, serialNumber=7B112F9EBEC342DFCAC774EB5C2681125C65E0CF Validity Not Before: Apr 4 17:47:54 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a404b9-7294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:94:b6:a7:94:3f:25:6e:b7:36:52:0d:00:7f: d6:9a:56:fc:ab:ec:e4:de:36:2e:3e:8f:fc:e5:56: fb:c9:83:01:bc:db:74:ec:24:d0:70:3b:35:08:7d: bb:7f:f7:ca:04:7d:38:81:7b:b4:c9:66:28:48:b9: 2d:83:ab:2f:09:b7:88:e1:dd:0a:c3:d9:45:13:e9: 37:64:93:72:31:40:ba:ef:90:93:c5:42:05:fe:2a: 55:09:e0:9a:1a:2e:48:6d:99:06:c0:e3:d0:44:f3: 30:71:47:fc:b9:de:49:c1:76:b8:b8:f2:b2:7f:2e: 2c:2a:42:fb:28:fc:69:17:89:8b:ca:24:f5:f2:0d: d4:23:22:8c:09:fd:1f:d3:9f:4e:a0:91:21:b6:c0: 5a:b4:df:de:c4:b1:aa:e8:d1:a7:e1:1f:a2:81:50: ed:ee:cf:54:1b:15:22:b3:02:ef:23:55:c3:f1:7f: ca:4d:2e:93:42:fe:72:2d:91:0b:2d:2e:d2:b5:c2: f8:0e:0d:a6:fb:46:05:2f:d2:b8:b4:cc:94:05:fe: 79:6a:5f:42:76:05:f6:78:03:bb:53:2e:b1:7b:65: bb:f5:7c:a4:86:70:28:83:62:b0:cc:e4:ae:64:95: 60:84:4b:f4:f3:94:49:d0:3d:26:83:3f:1b:c9:d4: 94:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BC:96:C9:53:9C:1A:E4:9A:2E:69:6B:94:8A:C4:3F:BF:FC:ED:4F X509v3 Authority Key Identifier: keyid:7B:11:2F:9E:BE:C3:42:DF:CA:C7:74:EB:5C:26:81:12:5C:65:E0:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/exEvnr7DQt_Kx3TrXCaBElxl4M8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exEvnr7DQt_Kx3TrXCaBElxl4M8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/FD58613E7B7B11E99CCAAF73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.132.0/22 IPv6: 2404:b140::/32 Signature Algorithm: sha256WithRSAEncryption 9e:44:01:27:89:d8:51:d7:69:bf:8f:61:16:0b:14:0a:00:2b: 63:00:7a:dc:2f:3c:29:d4:9b:0e:4b:67:cf:76:a0:40:69:ad: ad:d2:8d:56:bf:1a:e3:6b:6e:33:40:7b:fa:29:bd:e4:44:09: 48:a0:56:14:fc:d0:cd:45:04:c3:96:88:3a:4f:9a:15:35:7b: 1b:4a:93:03:7b:2d:f4:46:bd:8f:e1:9f:d2:25:1e:74:c6:a8: e5:74:a9:4d:3f:8a:8f:03:77:9b:06:ab:4c:fd:fc:8f:47:99: 82:de:48:22:0b:0b:66:75:eb:e3:75:75:5c:fd:07:98:08:63: e7:3c:d9:c0:6d:d0:24:87:5e:49:85:cf:65:e9:f8:ec:aa:1b: 75:46:2e:18:11:18:af:a7:df:81:50:29:43:00:7f:7c:24:89: a3:2b:b5:6f:42:a4:78:08:a8:5d:92:c8:be:99:c0:57:83:fd: fc:dc:6b:51:e1:7a:17:7e:13:93:d1:36:7d:95:c6:0b:c7:32: 66:9d:3e:b3:56:09:b5:a6:91:54:65:11:7a:8f:1d:75:be:e7: 52:71:68:80:9e:68:32:47:7a:d2:06:91:cd:84:63:ca:ca:11: b9:5c:b6:4a:6f:ef:34:94:2b:38:e4:9e:e5:3b:75:73:1b:af: b2:8b:6e:46 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICEAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZDQjExMTAvBgNVBAUTKDdCMTEyRjlFQkVDMzQyREZDQUM3NzRFQjVDMjY4MTEy NUM2NUUwQ0YwHhcNMjUwNDA0MTc0NzU0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDRiOS03Mjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkZS2p5Q/JW63NlINAH/Wmlb8q+zk3jYuPo/85Vb7yYMBvNt07CTQcDs1CH27 f/fKBH04gXu0yWYoSLktg6svCbeI4d0Kw9lFE+k3ZJNyMUC675CTxUIF/ipVCeCa Gi5IbZkGwOPQRPMwcUf8ud5JwXa4uPKyfy4sKkL7KPxpF4mLyiT18g3UIyKMCf0f 059OoJEhtsBatN/exLGq6NGn4R+igVDt7s9UGxUiswLvI1XD8X/KTS6TQv5yLZEL LS7StcL4Dg2m+0YFL9K4tMyUBf55al9CdgX2eAO7Uy6xe2W79XykhnAog2KwzOSu ZJVghEv085RJ0D0mgz8bydSUaQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFKu8lslT nBrkmi5pa5SKxD+//O1PMB8GA1UdIwQYMBaAFHsRL56+w0Lfysd061wmgRJcZeDP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkNCMS82RTg3MkQ1RTY1 NkYxMUU5QkJFOEY3MjRDNEY5QUUwMi9leEV2bnI3RFF0X0t4M1RyWENhQkVseGw0 TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V4RXZucjdEUXRfS3gzVHJYQ2FCRWx4bDRNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZDQjEvNkU4NzJENUU2NTZGMTFFOUJCRThGNzI0QzRGOUFFMDIvRkQ1ODYxM0U3 QjdCMTFFOTlDQ0FBRjczQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4mEMA0EAgACMAcDBQAkBLFAMA0GCSqGSIb3DQEBCwUAA4IBAQCe RAEnidhR12m/j2EWCxQKACtjAHrcLzwp1JsOS2fPdqBAaa2t0o1Wvxrja24zQHv6 Kb3kRAlIoFYU/NDNRQTDlog6T5oVNXsbSpMDey30Rr2P4Z/SJR50xqjldKlNP4qP A3ebBqtM/fyPR5mC3kgiCwtmdevjdXVc/QeYCGPnPNnAbdAkh15Jhc9l6fjsqht1 Ri4YERivp9+BUClDAH98JImjK7VvQqR4CKhdksi+mcBXg/383GtR4XoXfhOT0TZ9 lcYLxzJmnT6zVgm1ppFUZRF6jx11vudScWiAnmgyR3rSBpHNhGPKyhG5XLZKb+80 lCs45J7lO3VzG6+yi25G -----END CERTIFICATE-----Generated at Mon Mar 2 21:10:32 2026 by rpki-client